diff options
| author | Gyorgy Sarvari <skandigraun@gmail.com> | 2026-02-24 18:04:48 +0100 |
|---|---|---|
| committer | Khem Raj <raj.khem@gmail.com> | 2026-02-24 22:30:31 -0800 |
| commit | 14d464c15094d1758dc14706646a8aa645a3bf34 (patch) | |
| tree | 22c8a357bfd2817f41c5feea9eb3fa8c36eae0f8 /meta-python/recipes-devtools/python3-nltk | |
| parent | d79130035f32365bda93b45a6d9c49e29ba6ea08 (diff) | |
| download | meta-openembedded-14d464c15094d1758dc14706646a8aa645a3bf34.tar.gz | |
python3-nltk: upgrade 3.9.2 -> 3.9.3
Contains fix for CVE-2026-14009.
Changelog:
* Fix CVE-2025-14009: secure ZIP extraction in nltk.downloader
* Block path traversal/arbitrary reads in nltk.data for protocol-less refs
* Block path traversal/abs paths in corpus readers and FS pointers
* Validate external StanfordSegmenter JARs using SHA256
* Add optional sandbox enforcement for filestring()
* Maintenance: downloader/zipped models, CI/tooling updates
Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
Diffstat (limited to 'meta-python/recipes-devtools/python3-nltk')
| -rw-r--r-- | meta-python/recipes-devtools/python3-nltk/python3-nltk_3.9.3.bb (renamed from meta-python/recipes-devtools/python3-nltk/python3-nltk_3.9.2.bb) | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/meta-python/recipes-devtools/python3-nltk/python3-nltk_3.9.2.bb b/meta-python/recipes-devtools/python3-nltk/python3-nltk_3.9.3.bb index 43c23254d9..8953b75b28 100644 --- a/meta-python/recipes-devtools/python3-nltk/python3-nltk_3.9.2.bb +++ b/meta-python/recipes-devtools/python3-nltk/python3-nltk_3.9.3.bb | |||
| @@ -23,4 +23,4 @@ RRECOMMENDS:${PN} = "\ | |||
| 23 | 23 | ||
| 24 | inherit setuptools3 pypi | 24 | inherit setuptools3 pypi |
| 25 | 25 | ||
| 26 | SRC_URI[sha256sum] = "0f409e9b069ca4177c1903c3e843eef90c7e92992fa4931ae607da6de49e1419" | 26 | SRC_URI[sha256sum] = "cb5945d6424a98d694c2b9a0264519fab4363711065a46aa0ae7a2195b92e71f" |